| Title | ForU CMS ForU CMS dev Official version Arbitrary Administrator Password Reset |
|---|
| Description | A critical vulnerability has been identified in ForU CMS, affecting the backend administrator login functionality. As a result, any user can access an unauthorized interface to reset the administrator password and gain access to the backend. |
|---|
| Source | ⚠️ https://github.com/mi2acle/forucmsvuln/blob/master/passwordreset.md |
|---|
| User | Mi2ac1e (UID 61142) |
|---|
| Submission | 01/09/2024 11:25 (2 years ago) |
|---|
| Moderation | 01/11/2024 13:39 (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 250444 [ForU CMS up to 2020-06-23 index.php?act=reset_admin_psw password recovery] |
|---|
| Points | 16 |
|---|